Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/e53fd0dba21de5e976b79934801d829234a2bb84.roa
File:                     e53fd0dba21de5e976b79934801d829234a2bb84.roa (raw, json)
Hash identifier:          PxhwvUjcoKYwUbL/aqsVRabptCyPEz2+a7aw8muPBrI=
Subject key identifier:   FD:DA:AF:59:E6:EC:40:2A:C2:A5:95:9F:17:D2:BD:A6:F3:B4:97:C4
Certificate issuer:       /CN=f595ed733bf54f430d174bb1f0bf895d6bc70b64
Certificate serial:       12F233
Authority key identifier: 34:D1:75:0D:84:1E:60:5A:A0:B8:09:8B:97:F1:F6:1C:36:10:0E:97
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f595ed733bf54f430d174bb1f0bf895d6bc70b64.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/e53fd0dba21de5e976b79934801d829234a2bb84.roa
Signing time:             Wed 10 Aug 2022 23:08:09 +0000
ROA not before:           Wed 10 Aug 2022 23:07:50 +0000
ROA not after:            Sat 10 Aug 2024 23:07:50 +0000
asID:                     271842
IP address blocks:        2803:b0e0:9975::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/f595ed733bf54f430d174bb1f0bf895d6bc70b64.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/f595ed733bf54f430d174bb1f0bf895d6bc70b64.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f595ed733bf54f430d174bb1f0bf895d6bc70b64.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 12:22:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1241651 (0x12f233)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f595ed733bf54f430d174bb1f0bf895d6bc70b64
        Validity
            Not Before: Aug 10 23:07:50 2022 GMT
            Not After : Aug 10 23:07:50 2024 GMT
        Subject: CN=e53fd0dba21de5e976b79934801d829234a2bb84
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:de:41:16:a0:ea:f2:89:ab:2c:f7:fd:c4:6a:
                    14:26:75:ce:aa:c6:48:42:4f:4f:21:b0:8f:cf:85:
                    64:19:75:36:34:b5:f9:3e:48:55:8d:15:9d:27:7f:
                    d7:af:83:bb:37:d8:59:1a:17:e8:20:95:69:88:75:
                    a3:41:c8:b1:ec:04:45:b1:bb:59:90:03:0e:41:d6:
                    ea:b3:1b:f9:7f:de:e7:f3:6b:95:ec:1a:df:4a:8e:
                    45:9d:c3:25:1c:6a:35:ae:ca:90:53:17:f5:58:7a:
                    39:52:f6:0b:85:be:db:3d:44:c4:83:15:3d:0c:45:
                    30:0a:a4:9d:71:06:8e:c1:eb:c9:80:00:9d:ef:0b:
                    23:2d:91:c7:b7:b9:81:21:ee:79:22:f8:4d:67:6c:
                    45:6f:e2:af:9d:b1:e8:c2:84:c4:25:52:12:bf:d0:
                    41:33:b2:99:49:07:2e:6b:fb:f2:6c:5e:d5:6a:9c:
                    75:84:7a:d5:2a:c9:72:4e:90:ba:5d:80:b7:83:de:
                    35:e8:33:c6:6d:ac:ba:86:c9:6f:a0:20:b2:42:8b:
                    74:0a:9d:bc:ce:b8:c3:3c:6f:a3:fb:2c:aa:0b:42:
                    12:f1:59:ef:cb:7c:02:60:7f:cf:41:68:0e:1a:da:
                    6a:ad:4f:59:d2:d0:12:83:58:8e:32:a3:92:dc:11:
                    7b:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:DA:AF:59:E6:EC:40:2A:C2:A5:95:9F:17:D2:BD:A6:F3:B4:97:C4
            X509v3 Authority Key Identifier:
                keyid:34:D1:75:0D:84:1E:60:5A:A0:B8:09:8B:97:F1:F6:1C:36:10:0E:97

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f595ed733bf54f430d174bb1f0bf895d6bc70b64.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/e53fd0dba21de5e976b79934801d829234a2bb84.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/f595ed733bf54f430d174bb1f0bf895d6bc70b64.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:b0e0:9975::/48

    Signature Algorithm: sha256WithRSAEncryption
         a5:ba:60:00:7c:c7:27:d1:15:ec:e0:f9:96:10:ec:10:0b:0f:
         99:ec:7e:01:cd:c6:38:44:20:fb:9f:dd:71:c9:84:a7:e5:56:
         b5:b4:74:74:e1:6a:b9:32:e2:47:f6:91:d9:16:bf:9d:75:fc:
         a9:67:ae:d0:58:d8:d5:57:5f:7d:07:66:45:58:2f:21:ed:4b:
         e0:d4:3d:d0:a9:b3:64:fc:0d:e3:a0:a1:44:89:93:55:07:32:
         fe:fb:09:7f:bc:8b:5b:62:67:40:f9:4b:ca:d7:8c:6c:fe:af:
         c2:c7:60:3e:92:69:c1:08:a1:55:9c:7c:23:27:7e:e3:72:e9:
         2e:2a:20:19:27:43:3f:96:02:ef:18:55:f3:3f:de:c5:10:cf:
         82:fb:0e:9b:dd:4a:c8:ea:7b:6d:71:1c:d8:24:b4:e7:aa:14:
         b1:15:f4:0b:65:fa:e2:01:06:01:87:6a:71:32:ac:f5:87:9d:
         d1:5d:52:7c:65:3e:9f:d4:3f:bd:73:1b:0a:b9:f2:33:ee:eb:
         55:be:dd:de:c7:0c:43:d8:2a:8d:e1:fc:37:75:bf:f7:39:5d:
         80:77:6e:82:05:50:75:ed:f7:8a:3d:04:c7:ab:8a:ae:bd:2b:
         3d:e6:36:ae:ab:83:31:fe:8d:42:23:19:25:ad:6d:02:18:e4:
         90:71:a4:71
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIDEvIzMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGY1
OTVlZDczM2JmNTRmNDMwZDE3NGJiMWYwYmY4OTVkNmJjNzBiNjQwHhcNMjIwODEw
MjMwNzUwWhcNMjQwODEwMjMwNzUwWjAzMTEwLwYDVQQDEyhlNTNmZDBkYmEyMWRl
NWU5NzZiNzk5MzQ4MDFkODI5MjM0YTJiYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAld5BFqDq8omrLPf9xGoUJnXOqsZIQk9PIbCPz4VkGXU2NLX5
PkhVjRWdJ3/Xr4O7N9hZGhfoIJVpiHWjQcix7ARFsbtZkAMOQdbqsxv5f97n82uV
7BrfSo5FncMlHGo1rsqQUxf1WHo5UvYLhb7bPUTEgxU9DEUwCqSdcQaOwevJgACd
7wsjLZHHt7mBIe55IvhNZ2xFb+KvnbHowoTEJVISv9BBM7KZSQcua/vybF7Vapx1
hHrVKslyTpC6XYC3g9416DPGbay6hslvoCCyQot0Cp28zrjDPG+j+yyqC0IS8Vnv
y3wCYH/PQWgOGtpqrU9Z0tASg1iOMqOS3BF75wIDAQABo4ICXjCCAlowHQYDVR0O
BBYEFP3ar1nm7EAqwqWVnxfSvabztJfEMB8GA1UdIwQYMBaAFDTRdQ2EHmBaoLgJ
i5fx9hw2EA6XMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZjU5NWVk
NzMzYmY1NGY0MzBkMTc0YmIxZjBiZjg5NWQ2YmM3MGI2NC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNWIxZTE1MmYtZmM1MC00MzViLWJlZWItOGIzODY2
ZTFiMGZlL2U1M2ZkMGRiYTIxZGU1ZTk3NmI3OTkzNDgwMWQ4MjkyMzRhMmJiODQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy81YjFlMTUyZi1mYzUwLTQzNWItYmVlYi04YjM4
NjZlMWIwZmUvZjU5NWVkNzMzYmY1NGY0MzBkMTc0YmIxZjBiZjg5NWQ2YmM3MGI2
NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT
MBEwDwQCAAIwCQMHACgDsOCZdTANBgkqhkiG9w0BAQsFAAOCAQEApbpgAHzHJ9EV
7OD5lhDsEAsPmex+Ac3GOEQg+5/dccmEp+VWtbR0dOFquTLiR/aR2Ra/nXX8qWeu
0FjY1VdffQdmRVgvIe1L4NQ90KmzZPwN46ChRImTVQcy/vsJf7yLW2JnQPlLyteM
bP6vwsdgPpJpwQihVZx8Iyd+43LpLiogGSdDP5YC7xhV8z/exRDPgvsOm91KyOp7
bXEc2CS056oUsRX0C2X64gEGAYdqcTKs9Yed0V1SfGU+n9Q/vXMbCrnyM+7rVb7d
3scMQ9gqjeH8N3W/9zldgHduggVQde33ij0Ex6uKrr0rPeY2rquDMf6NQiMZJa1t
AhjkkHGkcQ==
-----END CERTIFICATE-----
Generated at Thu Mar 28 14:02:41 2024 by rpki-client on console-fra.rpki-client.org